Mozilla

Firefox

2867 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
10

CVE-2012-0467

  • EPSS 2.91%
  • Veröffentlicht 25.04.2012 10:10:17
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox 4.x through 11.0, Firefox ESR 10.x before 10.0.4, Thunderbird 5.0 through 11.0, Thunderbird ESR 10.x before 10.0.4, and SeaMonkey before 2.9 allow remote attackers to cause...

10

CVE-2012-0468

  • EPSS 2.46%
  • Veröffentlicht 25.04.2012 10:10:17
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The browser engine in Mozilla Firefox 4.x through 11.0, Thunderbird 5.0 through 11.0, and SeaMonkey before 2.9 allows remote attackers to cause a denial of service (assertion failure and memory corruption) or possibly execute arbitrary code via vecto...

10

CVE-2012-0469

  • EPSS 41.57%
  • Veröffentlicht 25.04.2012 10:10:17
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Use-after-free vulnerability in the mozilla::dom::indexedDB::IDBKeyRange::cycleCollection::Trace function in Mozilla Firefox 4.x through 11.0, Firefox ESR 10.x before 10.0.4, Thunderbird 5.0 through 11.0, Thunderbird ESR 10.x before 10.0.4, and SeaMo...

10

CVE-2012-0470

  • EPSS 13.59%
  • Veröffentlicht 25.04.2012 10:10:17
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Heap-based buffer overflow in the nsSVGFEDiffuseLightingElement::LightPixel function in Mozilla Firefox 4.x through 11.0, Firefox ESR 10.x before 10.0.4, Thunderbird 5.0 through 11.0, Thunderbird ESR 10.x before 10.0.4, and SeaMonkey before 2.9 allow...

4.3

CVE-2012-0471

  • EPSS 0.72%
  • Veröffentlicht 25.04.2012 10:10:17
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Cross-site scripting (XSS) vulnerability in Mozilla Firefox 4.x through 11.0, Firefox ESR 10.x before 10.0.4, Thunderbird 5.0 through 11.0, Thunderbird ESR 10.x before 10.0.4, and SeaMonkey before 2.9 allows remote attackers to inject arbitrary web s...

9.3

CVE-2012-0472

  • EPSS 1.53%
  • Veröffentlicht 25.04.2012 10:10:17
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The cairo-dwrite implementation in Mozilla Firefox 4.x through 11.0, Firefox ESR 10.x before 10.0.4, Thunderbird 5.0 through 11.0, Thunderbird ESR 10.x before 10.0.4, and SeaMonkey before 2.9, when certain Windows Vista and Windows 7 configurations a...

5

CVE-2012-0473

  • EPSS 0.71%
  • Veröffentlicht 25.04.2012 10:10:17
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The WebGLBuffer::FindMaxUshortElement function in Mozilla Firefox 4.x through 11.0, Firefox ESR 10.x before 10.0.4, Thunderbird 5.0 through 11.0, Thunderbird ESR 10.x before 10.0.4, and SeaMonkey before 2.9 calls the FindMaxElementInSubArray function...

4.3

CVE-2012-0474

  • EPSS 0.69%
  • Veröffentlicht 25.04.2012 10:10:17
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Cross-site scripting (XSS) vulnerability in the docshell implementation in Mozilla Firefox 4.x through 11.0, Firefox ESR 10.x before 10.0.4, Thunderbird 5.0 through 11.0, Thunderbird ESR 10.x before 10.0.4, and SeaMonkey before 2.9 allows remote atta...

2.6

CVE-2012-0475

  • EPSS 0.29%
  • Veröffentlicht 25.04.2012 10:10:17
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Mozilla Firefox 4.x through 11.0, Thunderbird 5.0 through 11.0, and SeaMonkey before 2.9 do not properly construct the Origin and Sec-WebSocket-Origin HTTP headers, which might allow remote attackers to bypass an IPv6 literal ACL via a cross-site (1)...

4.3

CVE-2012-0477

  • EPSS 0.72%
  • Veröffentlicht 25.04.2012 10:10:17
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Multiple cross-site scripting (XSS) vulnerabilities in Mozilla Firefox 4.x through 11.0, Firefox ESR 10.x before 10.0.4, Thunderbird 5.0 through 11.0, Thunderbird ESR 10.x before 10.0.4, and SeaMonkey before 2.9 allow remote attackers to inject arbit...